Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv3

CVE-2022-0492

Published: 03/03/2022 Updated: 19/10/2022
CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Linux

Vulnerability Summary

It exists that the BPF verifier in the Linux kernel did not properly restrict pointer types in certain situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-23222) ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

linux linux kernel 5.17

debian debian linux 9.0

debian debian linux 10.0

debian debian linux 11.0

redhat virtualization host 4.0

redhat enterprise linux 8.0

redhat enterprise linux eus 8.2

redhat enterprise linux server tus 8.2

redhat enterprise linux server aus 8.2

redhat enterprise linux for real time for nfv tus 8.2

redhat enterprise linux for real time tus 8.2

redhat enterprise linux server update services for sap solutions 8.2

redhat enterprise linux server update services for sap solutions 8.1

redhat codeready linux builder 8.0

redhat codeready linux builder for power little endian 8.0

redhat enterprise linux for ibm z systems 8.0

redhat enterprise linux for power little endian 8.0

redhat enterprise linux server for power little endian update services for sap solutions 8.1

redhat enterprise linux server for power little endian update services for sap solutions 8.2

redhat codeready linux builder 8.2

redhat codeready linux builder for power little endian 8.2

redhat enterprise linux for ibm z systems eus 8.0

redhat enterprise linux for power little endian eus 8.0

redhat enterprise linux for real time for nfv tus 8.0

redhat enterprise linux for real time tus 8.0

canonical ubuntu linux 18.04

canonical ubuntu linux 14.04

canonical ubuntu linux 20.04

canonical ubuntu linux 16.04

canonical ubuntu linux 22.04

fedoraproject fedora 35

netapp solidfire \\& hci management node -

netapp hci compute node -

netapp baseboard management controller h410c -

netapp solidfire\\, enterprise sds \\& hci storage node -

netapp baseboard management controller h300s -

netapp baseboard management controller h500s -

netapp baseboard management controller h700s -

netapp baseboard management controller h300e -

netapp baseboard management controller h500e -

netapp baseboard management controller h700e -

netapp baseboard management controller h410s -

Vendor Advisories

Red Hat: Important: kernel-rt security and bug fix update
Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this upd ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update is now available for Red Hat Enterprise Linux 77 Update Services for SAP SolutionsRed Hat Product Security has r ...
Red Hat: Important: kernel security update
Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 77 Advanced Update Support, Red Hat Enterprise Linux 77 Telco ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as ...
Red Hat: Important: kernel security update
Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 73 Advanced Update SupportRed Hat Product Security has rated ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 76 Advanced Update Support, Red Hat Enterprise Lin ...
Red Hat: Important: kernel security, bug fix, and enhancement update
Synopsis Important: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 84 Extended Update SupportRed Hat P ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 74 Advanced Update SupportRed Hat Product Securit ...
Red Hat: Important: kernel security update
Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 6 Extended Lifecycle SupportRed Hat Product Security has rated ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch is now available for Red Hat Enterprise Linux 82 Extended Update SupportRed Hat Product Securit ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update is now available for Red Hat Enterprise Linux 84 Extended Update SupportRed Hat Product Security has rated this ...
Red Hat: Important: kernel-rt security and bug fix update
Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 84 Extended Update SupportRed Hat Product S ...
Red Hat: Important: kernel security, bug fix, and enhancement update
Synopsis Important: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 82 Extended Update SupportRed Hat P ...
Red Hat: Important: kernel-rt security and bug fix update
Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 82 Extended Update SupportRed Hat Product S ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch is now available for Red Hat Enterprise Linux 81 Update Services for SAP SolutionsRed Hat Produ ...
Ubuntu Security Notice: USN-5302-1: Linux kernel (OEM) vulnerabilities
Several security issues were fixed in the Linux kernel ...
Red Hat: Important: kernel-rt security and bug fix update
Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this upd ...
Red Hat: Important: kernel security, bug fix, and enhancement update
Synopsis Important: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated ...
Amazon Linux 2: ALAS2KERNEL-5.4-2022-022
A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU This flaw allows a local user to crash the system or escalate their privileges on the system (CVE-2022-0330) The cgroup release_agent is called with call_usermodehelper The function call_usermodehel ...
Amazon Linux 2: ALAS2KERNEL-5.10-2022-010
A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU This flaw allows a local user to crash the system or escalate their privileges on the system (CVE-2022-0330) The cgroup release_agent is called with call_usermodehelper The function call_usermodehel ...
Red Hat: Important: kernel security update
Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 81 Update Services for SAP SolutionsRed Hat Product Security ...
Red Hat: Important: kpatch-patch-4_18_0-147_58_1 security and bug fix update
Synopsis Important: kpatch-patch-4_18_0-147_58_1 security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch-4_18_0-147_58_1 is now available for Red Hat Enterprise Linux 81 Upd ...
Ubuntu Security Notice: USN-5339-1: Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel ...
Red Hat: Moderate: OpenShift Container Platform 4.7.50 security update
Synopsis Moderate: OpenShift Container Platform 4750 security update Type/Severity Security Advisory: Moderate Topic Red Hat OpenShift Container Platform release 4750 is now available withupdates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Container Platfo ...
Debian Security Advisories: DSA-5095-1 linux -- security update
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2020-36310 A flaw was discovered in the KVM implementation for AMD processors, which could lead to an infinite loop A malicious VM guest could exploit this to cause a denial of service ...
Ubuntu Security Notice: USN-5338-1: Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel ...
Amazon Linux 2022: ALAS2022-2022-024
A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a filesystem that do ...
Amazon Linux AMI: ALAS-2022-1563
A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports This flaw allows an off-path remote user to effectively bypass the source port UDP randomization The highest threat from this vulnerability is to confidentiality ...
Ubuntu Security Notice: USN-5362-1: Linux kernel (Intel IOTG) vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: USN-5368-1: Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: USN-5337-1: Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel ...
Amazon Linux 2: ALAS2-2022-1749
A denial of service flaw for virtual machine guests in the Linux kernel's Xen hypervisor subsystem was found in the way users call some interrupts with high frequency from one of the guestsA local user could use this flaw to starve the resources resulting in a denial of service (CVE-2021-28711) A denial of service flaw for virtual machine guests ...
Red Hat: Moderate: Red Hat Advanced Cluster Management 2.3.8 security and container updates
Synopsis Moderate: Red Hat Advanced Cluster Management 238 security and container updates Type/Severity Security Advisory: Moderate Topic Red Hat Advanced Cluster Management for Kubernetes 238 GeneralAvailability release images, which provide security and container updatesRed Hat Product Security has rated this update as having a securit ...
Red Hat: Moderate: Red Hat Advanced Cluster Management 2.4.3 security updates and bug fixes
Synopsis Moderate: Red Hat Advanced Cluster Management 243 security updates and bug fixes Type/Severity Security Advisory: Moderate Topic Red Hat Advanced Cluster Management for Kubernetes 243 General Availability release images This update provides security fixes, bug fixes, and updates the container imagesRed Hat Product Security has ...
IBM: Security Bulletin: IBM QRadar SIEM is vulnerable to Using Components with Known Vulnerabilities
The product includes vulnerable components (eg, framework libraries) that may be identified and exploited with automated tools IBM has addresses the vulnerabilities ...
Red Hat: Moderate: Red Hat Advanced Cluster Management 2.3.11 security updates and bug fixes
概述 Moderate: Red Hat Advanced Cluster Management 2311 security updates and bug fixes 类型/严重性 Security Advisory: Moderate 标题 Red Hat Advanced Cluster Management for Kubernetes 2311 generalavailability release images, which provide security updates and bug fixesRed Hat Product Security has rated this update as having a sec ...
Ubuntu Security Notice: USN-5343-1: Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel ...
Red Hat: Moderate: Migration Toolkit for Containers (MTC) 1.5.4 security update
Synopsis Moderate: Migration Toolkit for Containers (MTC) 154 security update Type/Severity Security Advisory: Moderate Topic The Migration Toolkit for Containers (MTC) 154 is now availableRed Hat Product Security has rated this update as having a security impactof Moderate A Common Vulnerability Scoring System (CVSS) base score, whichg ...
Debian Security Advisories: DSA-5096-1 linux -- security update
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2020-29374 Jann Horn of Google reported a flaw in Linux's virtual memory management A parent and child process initially share all their memory, but when either writes to a shared page, ...

ICS Advisories

Hitachi Energy APM Edge
Critical Infrastructure Sectors: Energy

Mailing Lists

Full Disclosure: CVE-2022-0492: Linux kernel cgroups v1 missing capabilities check when setting release_agent
Hello all, It has been discovered that under certain circumstances, the Linux kernel’s cgroups v1 release_agent feature can be used to escalate privilege and bypass namespace isolation unexpectedly CVE-2022-0492 has been assigned to this issue, which is corrected by requiring CAP_SYS_ADMIN in the initial user namespace when setting release_age ...

Github Repositories

CVE-2022-0492

CVE-2022-0492 容器逃逸分析 [toc] 漏洞简介 漏洞编号: CVE-2022-0492 漏洞产品: linux kernel - cgroup 影响版本: ~linux kernel 517-rc3 漏洞危害: 当容器没有开启额外安全措施时,获得容器内root 权限即可逃逸到宿主机 环境搭建 在存在漏洞版本的内核的linux中使用docker 即可。 #关闭所有安全防护启动docker do

CVE-2022-0492 Docker Breakout Checker and PoC Summary Exploiting the vulnerability requires the attacker to have access to a Docker container running on a vulnerable system Once exploited, the attacker can escape the container and gain complete control over the host system A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cg

can-ctr-escape-cve-2022-0492

A container image that tests whether a container enviroment is vulnerable to escapes via CVE-2022-0492 Best to execute under a new container running an image built with: $ cd can-ctr-escape-cve-2022-0492 $ docker build -t can-ctr-escape-cve-2022-0492:latest A pre-built image is available at us-central1-dockerpkgdev/twistlock-secresea

CVE-2022-0492

CVE-2022-0492-Checker A script to check if a container environment is vulnerable to container escapes via CVE-2022-0492 About the vulnerability On Feb 4, Linux announced CVE-2022-0492, a new privilege escalation vulnerability in the kernel CVE-2022-0492 marks a logical bug in control groups (cgroups), a Linux feature that is a fundamental building block of containers Th

Practices for Kubernetes Security 20220412 Proposal Feedback: This could be a really interesting project I also wonder how a recent vulnerability in kubernetes (CVE-2022-0492) could be affected by this approach You might also want to discuss how other bugs/vulnerabilities in kubernetes could be detected/prevented with your approach Apart from having some functional protot

CVE-2022-0492-Checker

CVE-2022-0492-Checker A script to check if a container environment is vulnerable to container escapes via CVE-2022-0492

Shovel Docker容器逃逸工具 功能 支持的逃逸方式 release_agent device_allow cve-2022-0492 支持的存储驱动 device_mapper aufs btrfs vfs zfs overlayfs 支持的利用类型 exec: 在宿主机执行命令 shell: 获取宿主机shell reverse: 反弹shell backdoor: 向宿主机植入后门并运行 自动清理攻击痕迹 使用方式 usage: shovel

Pentest Enumeration Brute force subdomains gobuster vhost -u cybercraftedthm -w ~/pentest/wordlists/shubs-subdomainstxt wfuzz -c -f sub-fightertxt -Z \ -w ~/pentest/wordlists/shubs-subdomainstxt \ -H "Host: FUZZcmessthm" --hw 290 cmessthm nmap configure firewall to return RST

CVE-2022-0492-Container-Escape CVE-2022-0492-Container-Escape

Container Escape Exploit This exploit is based on combining CVE-2016-3714 and CVE-2022-0492 To clarify, the first one is just an addon to get the main one running! It is old and long patched Preconditions Repo Structure How to get running

Awesome Stars A curated list of my GitHub stars! Generated by starred Contents Batchfile C C# C++ CSS Go HCL HTML Hack Java JavaScript Jinja Jupyter Notebook Kotlin Lua Objective-C Others PHP Pascal Perl PowerShell Pug Python Ruby Rust SCSS Scheme Shell Swift Tcl TypeScript XSLT Batchfile frizb/Windows-Privilege-Escalation - Windows Privilege Escalation Techniques and Sc

Awesome Stars A curated list of my GitHub stars! Generated by starred Contents api awesome aws bash c chrome cli cpp csharp database docker documentation electron go google hacktoberfest html http ios java javascript jekyll latex linux lua machine-learning macos markdown material-design mysql nodejs others p2p package-manager python python3 ruby rust security server shell

Awesome Stars A curated list of my GitHub stars! Generated by stargazed Contents Batchfile (1) C (12) C# (5) C++ (5) CSS (3) Go (21) HCL (1) HTML (7) Hack (1) Java (8) JavaScript (9) Jinja (1) Jupyter Notebook (1) Kotlin (1) Lua (1) Objective-C (2) Others (19) PHP (2) Pascal (1) Perl (3) PowerShell (18) Pug (1) Python (68) Ruby (6) Rust (3) SCSS (1) Scheme (1) Shell (17)

VED (Vault Exploit Defense) - Linux kernel threat detection and prevention system How VED evolved Our previous write-up introduced the problem and the current status of Linux kernel security and why cloud native and automotive solution should adopt 3rd-party Linux kernel hardening solution We've been trying to build the full-stack security solution for platform and infras

DevSecOps Kubernetes Playground (aka "A Hacker's Guide to Kubernetes") Note: Based on k8s Security HOWTO Prerequisite: Setup Pentest Infrastructure/Environment: Kubernetes kubeadm-based setup with terraform + ansible on ProxMox (pfSense VM as Firewall/VPN/LB + k8s nodes VMs) Objective: Kubernetes has historically not been security hardened out of the box! (defaul

DevSecOps Kubernetes Playground ("A Hacker's Guide to Kubernetes") Based on Cloud-Native & Kubernetes Security HOWTO Tech Stack: Proxmox/pfSense/Ansible/Packer/Terraform/Kubernetes: kubeadm-based & KIND/Docker/etc Prerequisite: (DEFAULT DevSecOps ENV) Pentest Infrastructure/Environment (On-Prem Kubernetes Cluster): Kubernetes kubeadm-based setup

DevSecOps Kubernetes Playground (aka "A Hacker's Guide to Kubernetes") Based on Cloud-Native & Kubernetes Security HOWTO Prerequisite: Setup Pentest Infrastructure/Environment: Kubernetes kubeadm-based setup with terraform + ansible on ProxMox (pfSense VM as Firewall/VPN/LB + k8s nodes VMs) Objective: Kubernetes has historically not been security hardened

PoC in GitHub 2022 CVE-2022-0185 (2022-02-11) A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a f

PoC in GitHub 2022 CVE-2022-0185 (2022-02-11) A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a f

PoC in GitHub 2022 CVE-2022-0185 (2022-02-11) A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a f

veracode-container-security-finding-parser Map Vulnerabilities into Different Layers of the Container Image Usage usage: mainpy [-h] [-i INSPECT_FILE] [-s SCAN_FILE] [-d] Example python mainpy Output: Scanned Image: juliantotzek/verademo1-tomcat:latest, Base Image OS Family: centos , Base Image OS Name: 761810 Base Image (based on the first Layer in veracode inspect comman

Recent Articles

Bug in the Linux Kernel Allows Privilege Escalation, Container Escape
Threatpost • Nate Nelson • 08 Mar 2022

To go along with the “Dirty Pipe” Linux security bug coming to light, two researchers from Huawei – Yiqi Sun and Kevin Wang – have discovered a vulnerability in the “control groups” feature of the Linux kernel which allows attackers to escape containers, escalate privileges and execute arbitrary commands on a host machine.
The bug (CVE-2022-0492) exists in the Linux kernel’s “cgroup_release_agent_write” feature, which is found in the “kernel/cgroup/cgroup-v1.c” functi...

Read more...

References

CWE-287https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02afhttps://bugzilla.redhat.com/show_bug.cgi?id=2051505https://lists.debian.org/debian-lts-announce/2022/03/msg00012.htmlhttps://lists.debian.org/debian-lts-announce/2022/03/msg00011.htmlhttps://www.debian.org/security/2022/dsa-5096https://www.debian.org/security/2022/dsa-5095http://packetstormsecurity.com/files/166444/Kernel-Live-Patch-Security-Notice-LSN-0085-1.htmlhttps://security.netapp.com/advisory/ntap-20220419-0002/http://packetstormsecurity.com/files/167386/Kernel-Live-Patch-Security-Notice-LSN-0086-1.htmlhttps://github.com/chenaotian/CVE-2022-0492https://threatpost.com/bug-linux-kernel-privilege-escalation-container-escape/178808/https://nvd.nist.govhttps://www.cisa.gov/uscert/ics/advisories/icsa-22-270-02https://ubuntu.com/security/notices/USN-5302-1https://ubuntu.com/security/notices/USN-5362-1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-20963CVE-2023-28626remote attackersfile inclusionCVE-2023-28447CVE-2023-27394CVE-2023-23529CVE-2023-27231XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook